$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/1614034C93C711EDB3D8A867C4F9AE02.roa File: 1614034C93C711EDB3D8A867C4F9AE02.roa (raw, json) Hash identifier: o0PMmxNvCxGi4Ma1i/XdkAnkuomNueTn7pJoxsJKzxo= Subject key identifier: EF:9F:7F:9C:0C:F2:D2:AC:00:90:57:41:E0:A1:B4:D2:4E:E0:D1:C8 Certificate issuer: /CN=A91E0EF8/serialNumber=A04E743AD31F4F83F09DC5D2F7EF4FABE1EF687B Certificate serial: 0533 Authority key identifier: A0:4E:74:3A:D3:1F:4F:83:F0:9D:C5:D2:F7:EF:4F:AB:E1:EF:68:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oE50OtMfT4PwncXS9-9Pq-HvaHs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/1614034C93C711EDB3D8A867C4F9AE02.roa Signing time: Sat 31 Aug 2024 01:03:58 +0000 ROA not before: Sat 31 Aug 2024 01:03:58 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 142426 IP address blocks: 103.168.42.0/24 maxlen: 24 103.168.43.0/24 maxlen: 24 2001:df6:cd80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/oE50OtMfT4PwncXS9-9Pq-HvaHs.crl rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/oE50OtMfT4PwncXS9-9Pq-HvaHs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oE50OtMfT4PwncXS9-9Pq-HvaHs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1331 (0x533) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF8/serialNumber=A04E743AD31F4F83F09DC5D2F7EF4FABE1EF687B Validity Not Before: Aug 31 01:03:58 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66d26bfd-9804 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:10:c2:b7:4b:4a:2a:cb:53:ad:bc:6b:ab:31: 2e:14:e5:02:c0:d6:2e:ae:34:70:76:7a:5c:57:e8: ff:5d:a0:20:e9:ff:8b:d1:85:93:2a:b7:5e:2b:03: 5e:af:8d:0b:aa:1a:31:7a:0a:7f:54:27:08:46:27: 96:f5:d5:24:07:c7:75:05:34:25:22:8f:f7:d5:90: e1:bf:96:02:d8:34:86:65:9d:d2:3b:21:57:87:58: 61:bf:11:7e:d7:e0:02:f4:ff:f8:91:e7:d2:dd:69: 7f:e6:eb:9a:40:98:9d:9c:12:a6:0b:16:7b:8f:6d: 58:02:ff:17:10:08:1c:6e:80:97:5a:7f:69:2e:47: 35:5e:d9:09:e4:17:05:c3:6e:9b:a9:ad:77:e6:90: 47:6e:02:a1:48:52:40:95:e7:e3:8e:11:ac:38:d6: 6f:aa:7d:d0:32:af:2a:47:2e:1e:9f:e9:96:eb:1c: 79:3c:77:b1:db:bb:4e:c4:f4:5d:77:2c:1e:e1:e4: a6:4f:01:fd:33:69:4a:a8:50:5d:71:14:70:0f:f9: 8e:26:de:26:fa:5b:6e:ea:d6:43:ba:f0:72:f4:3e: 5f:da:81:91:a9:2a:cb:15:71:7e:18:47:ae:8d:54: 40:fc:03:5c:a3:a2:74:a9:68:b9:a7:44:3d:76:2f: 91:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:9F:7F:9C:0C:F2:D2:AC:00:90:57:41:E0:A1:B4:D2:4E:E0:D1:C8 X509v3 Authority Key Identifier: keyid:A0:4E:74:3A:D3:1F:4F:83:F0:9D:C5:D2:F7:EF:4F:AB:E1:EF:68:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/oE50OtMfT4PwncXS9-9Pq-HvaHs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oE50OtMfT4PwncXS9-9Pq-HvaHs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/1614034C93C711EDB3D8A867C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.168.42.0/23 IPv6: 2001:df6:cd80::/48 Signature Algorithm: sha256WithRSAEncryption 64:0a:e1:d1:16:15:92:bc:4a:5a:d0:2e:10:26:81:8c:2f:db: 5d:68:b4:9e:88:bb:1b:82:f1:a7:9d:76:c7:6a:b2:51:95:db: f6:76:45:52:e9:ea:e6:0f:0e:92:1a:be:7f:e3:a8:ee:95:87: b6:ef:7c:de:b4:63:a8:18:56:a0:36:0a:e6:a3:e3:e8:1e:80: ca:cf:5a:e1:7b:9b:b1:7b:7e:52:05:ac:c7:44:d6:4c:2e:0a: 75:46:62:fe:4e:5d:b7:7c:1e:7a:c4:84:96:8b:5e:13:5c:e1: 5d:cb:88:9d:5e:cd:8e:a8:a1:2e:f4:92:18:5e:92:b5:90:15: 93:2c:bb:ca:6f:b4:c9:e5:59:fc:cf:8c:2a:cc:8b:69:92:12: be:7d:a3:9b:0f:ea:bd:d9:7a:22:4e:8b:a6:c3:cf:8c:35:af: ba:ee:04:ab:b1:99:3a:d1:97:b5:d3:a5:06:91:85:4e:0d:da: bb:5f:79:07:04:73:9a:93:bf:25:f3:5f:4d:8c:ea:8f:14:06: ff:bc:28:c1:e9:18:67:f4:78:15:9e:e1:d8:98:fd:64:1f:2c: e4:8f:d6:82:67:56:22:be:45:47:be:3b:d3:14:ce:8a:d1:34: 60:bc:5d:b7:85:31:10:87:d5:77:96:46:90:9b:26:f8:27:d7: 0d:ed:3d:38 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBTMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjgxMTAvBgNVBAUTKEEwNEU3NDNBRDMxRjRGODNGMDlEQzVEMkY3RUY0RkFC RTFFRjY4N0IwHhcNMjQwODMxMDEwMzU4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQyNmJmZC05ODA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAthDCt0tKKstTrbxrqzEuFOUCwNYurjRwdnpcV+j/XaAg6f+L0YWTKrdeKwNe r40Lqhoxegp/VCcIRieW9dUkB8d1BTQlIo/31ZDhv5YC2DSGZZ3SOyFXh1hhvxF+ 1+AC9P/4kefS3Wl/5uuaQJidnBKmCxZ7j21YAv8XEAgcboCXWn9pLkc1XtkJ5BcF w26bqa135pBHbgKhSFJAlefjjhGsONZvqn3QMq8qRy4en+mW6xx5PHex27tOxPRd dywe4eSmTwH9M2lKqFBdcRRwD/mOJt4m+ltu6tZDuvBy9D5f2oGRqSrLFXF+GEeu jVRA/ANco6J0qWi5p0Q9di+RNwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFO+ff5wM 8tKsAJBXQeChtNJO4NHIMB8GA1UdIwQYMBaAFKBOdDrTH0+D8J3F0vfvT6vh72h7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGOC9DOTM4RDEwNkNC NTQxMUVCQTNEMzZDNUJDNEY5QUUwMi9vRTUwT3RNZlQ0UHduY1hTOS05UHEtSHZh SHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29FNTBPdE1mVDRQd25jWFM5LTlQcS1IdmFIcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTBFRjgvQzkzOEQxMDZDQjU0MTFFQkEzRDM2QzVCQzRGOUFFMDIvMTYxNDAzNEM5 M0M3MTFFREIzRDhBODY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnqCowDwQCAAIwCQMHACABDfbNgDANBgkqhkiG9w0BAQsF AAOCAQEAZArh0RYVkrxKWtAuECaBjC/bXWi0noi7G4Lxp512x2qyUZXb9nZFUunq 5g8Okhq+f+Oo7pWHtu983rRjqBhWoDYK5qPj6B6Ays9a4XubsXt+UgWsx0TWTC4K dUZi/k5dt3weesSEloteE1zhXcuInV7NjqihLvSSGF6StZAVkyy7ym+0yeVZ/M+M KsyLaZISvn2jmw/qvdl6Ik6LpsPPjDWvuu4Eq7GZOtGXtdOlBpGFTg3au195BwRz mpO/JfNfTYzqjxQG/7wowekYZ/R4FZ7h2Jj9ZB8s5I/WgmdWIr5FR7470xTOitE0 YLxdt4UxEIfVd5ZGkJsm+CfXDe09OA== -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:38 2024 by rpki-client on console-fra.rpki-client.org